Microsoft Teams-Themed Attack Deploys Remote Access Tool
Security researchers have uncovered an active phishing campaign that leverages Microsoft Teams-themed lures to distribute legitimate remote access software configured for unauthorized access. By impersonating trusted workplace collaboration services, threat [...]
Malware Hidden in Fake Android Reader App
Cybersecurity researchers have uncovered a new Android malware campaign that used a fake document reader application to distribute the Anatsa banking trojan. The app appeared to be a legitimate file-reading [...]
Popular Smart TV Apps Found Exploiting User Connections
Smart TVs have become a common part of modern households, offering streaming services, gaming, and smart home connectivity. However, new research suggests that some smart TV applications may be doing [...]
LastPass Impacted by Klue OAuth Token Breach
A security incident involving third-party platform Klue has resulted in unauthorized access to a limited amount of customer data belonging to LastPass. The breach was not caused by a direct [...]
Scope Squatting Vulnerability Exposed in ClawHub Plugin Registry
A recently disclosed supply chain weakness in ClawHub's plugin registry allowed third-party developers to publish plugins under organizational namespaces they did not own. As a result, unofficial plugins appeared to [...]